Miroslav Stampar
|
66db80804d
|
fix
|
2010-12-10 16:03:32 +00:00 |
|
Miroslav Stampar
|
435f48b8cc
|
polite cosmetics
|
2010-12-10 15:28:56 +00:00 |
|
Miroslav Stampar
|
977988c0ab
|
cosmetics
|
2010-12-10 15:24:25 +00:00 |
|
Miroslav Stampar
|
fa8d378e80
|
another update
|
2010-12-10 15:18:15 +00:00 |
|
Miroslav Stampar
|
1ef44cfe60
|
fix
|
2010-12-10 15:06:53 +00:00 |
|
Miroslav Stampar
|
fe186cde55
|
proper fix
|
2010-12-10 13:26:31 +00:00 |
|
Miroslav Stampar
|
9957881040
|
you won't believe commit
|
2010-12-10 13:20:59 +00:00 |
|
Bernardo Damele
|
7c87ad4065
|
Minor speedup in -f mysql
|
2010-12-10 13:05:46 +00:00 |
|
Miroslav Stampar
|
b02bd55edc
|
minor refactoring
|
2010-12-10 13:04:36 +00:00 |
|
Miroslav Stampar
|
1fc9ed10a8
|
minor refactoring
|
2010-12-10 12:30:36 +00:00 |
|
Miroslav Stampar
|
4d8628e8fb
|
fix for booleans
|
2010-12-10 12:26:01 +00:00 |
|
Miroslav Stampar
|
fe2039f5ba
|
coollyy little commits
|
2010-12-10 11:32:46 +00:00 |
|
Bernardo Damele
|
d71e51e765
|
Minor improvement
|
2010-12-10 11:31:27 +00:00 |
|
Bernardo Damele
|
4741874e9e
|
Enhancement to speedup MySQL fingerprint
|
2010-12-10 11:27:36 +00:00 |
|
Miroslav Stampar
|
e98b81fe32
|
another update
|
2010-12-10 10:56:55 +00:00 |
|
Miroslav Stampar
|
d5e7a8d305
|
update
|
2010-12-10 10:54:17 +00:00 |
|
Bernardo Damele
|
b6dcbcef5b
|
Minor fix
|
2010-12-10 10:52:55 +00:00 |
|
Miroslav Stampar
|
471d9ccd65
|
another fix of my lala
|
2010-12-10 10:11:25 +00:00 |
|
Miroslav Stampar
|
029a6abba2
|
quick fix
|
2010-12-10 09:54:25 +00:00 |
|
Miroslav Stampar
|
441fc8dbd9
|
update regarding boolean based expressions
|
2010-12-09 21:15:18 +00:00 |
|
Miroslav Stampar
|
d5fb921154
|
removed debug print
|
2010-12-09 20:08:59 +00:00 |
|
Miroslav Stampar
|
1492823de0
|
it wasn't pretty, now it's pretty
|
2010-12-09 20:06:20 +00:00 |
|
Miroslav Stampar
|
bbffea2cbc
|
bug fix
|
2010-12-09 17:10:22 +00:00 |
|
Miroslav Stampar
|
0eb2c408a9
|
code refactoring
|
2010-12-09 16:49:02 +00:00 |
|
Miroslav Stampar
|
7e2984b4b6
|
added stacked query support for Oracle
|
2010-12-09 15:24:48 +00:00 |
|
Bernardo Damele
|
4bb40c0a06
|
Higher the level for Oracle stacked tests just in case the SQL inj is within a PL/SQL function ('cause of no support for stacked queries by design on Oracle)
|
2010-12-09 15:14:18 +00:00 |
|
Miroslav Stampar
|
d8edc5b244
|
adding stacked-query vector for Firebird
|
2010-12-09 15:11:21 +00:00 |
|
Bernardo Damele
|
13b522efc2
|
Added error-based support for MySQL < 5.0 - closes #14
|
2010-12-09 15:09:03 +00:00 |
|
Miroslav Stampar
|
5aafd19957
|
added vector for SQLite's stacked query payload
|
2010-12-09 15:06:40 +00:00 |
|
Bernardo Damele
|
df5f6bc1b7
|
Little precaution
|
2010-12-09 14:06:43 +00:00 |
|
Bernardo Damele
|
9230877d98
|
cosmetics
|
2010-12-09 13:57:38 +00:00 |
|
Miroslav Stampar
|
5114c887ea
|
minor minor update
|
2010-12-09 13:51:44 +00:00 |
|
Bernardo Damele
|
5fb04515d3
|
Added hidden (for the moment) switch --technique
|
2010-12-09 13:47:17 +00:00 |
|
Miroslav Stampar
|
b80a86a669
|
that's it for common stuff today
|
2010-12-09 12:59:22 +00:00 |
|
Miroslav Stampar
|
b26e09fc71
|
another minor update
|
2010-12-09 12:49:29 +00:00 |
|
Miroslav Stampar
|
f712d2477e
|
removed duplicate entries inside common wordlists (tables & columns) and added a script which does that automatically
|
2010-12-09 12:41:16 +00:00 |
|
Miroslav Stampar
|
c5b1f336ee
|
another update
|
2010-12-09 12:07:06 +00:00 |
|
Miroslav Stampar
|
06395b5408
|
update
|
2010-12-09 12:03:10 +00:00 |
|
Miroslav Stampar
|
cdff29ada7
|
update
|
2010-12-09 11:23:44 +00:00 |
|
Miroslav Stampar
|
196131bbca
|
minor cosmetics
|
2010-12-09 10:42:00 +00:00 |
|
Miroslav Stampar
|
71761ba9a5
|
another fix for another beautiful heavy query payload which took a few 100 megs and 5 mins to run
|
2010-12-09 10:35:18 +00:00 |
|
Miroslav Stampar
|
094baadc5b
|
bug fix (in SELECT based heavy queries COUNT(*) should be used; otherwise multiple row error happens without proper delay)
|
2010-12-09 10:17:04 +00:00 |
|
Miroslav Stampar
|
ec5c08ca7a
|
cosmetics
|
2010-12-09 09:24:20 +00:00 |
|
Miroslav Stampar
|
3fd1c37d53
|
update
|
2010-12-09 07:49:18 +00:00 |
|
Miroslav Stampar
|
db39dc32fc
|
minor update
|
2010-12-09 00:59:39 +00:00 |
|
Bernardo Damele
|
0c01be0eeb
|
Ugly work-around to avoid unescaping WAITFOR DELAY time between single quotes (unescaped CHAR(..) value does not work).
|
2010-12-09 00:34:02 +00:00 |
|
Bernardo Damele
|
9c61adb21d
|
Cosmetics
|
2010-12-09 00:26:06 +00:00 |
|
Bernardo Damele
|
b5c6527c72
|
Minor fix
|
2010-12-09 00:25:48 +00:00 |
|
Bernardo Damele
|
3b293c4ea7
|
Added possible stacked queries time-based blind vector for MSSQL
|
2010-12-08 23:55:42 +00:00 |
|
Bernardo Damele
|
f5ce739bdf
|
Added support for time-based blind SQL injection via stacked queries too. Need to add vectors for some DBMS yet.
|
2010-12-08 23:52:31 +00:00 |
|